2 matches found
CVE-2023-2433
The CVE-2023-2433 entry concerns the WordPress YARPP (Yet Another Related Posts Plugin) vulnerable to Stored Cross-Site Scripting via the className parameter. Affected: YARPP versions up to and including 5.30.3. Root cause: insufficient input sanitization and output escaping in YARPP_Core.php, en...
WordPress YARPP Plugin <= 5.30.3 is vulnerable to Cross Site Scripting (XSS)
Software YARPP Type Plugin Vulnerable versions = 5.30.3 Fixed in 5.30.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2433 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a7d49568bb15 Credits Lana Codes Required privilege...